Dev/talos-cluster
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Configure Postgres for Infisical

Browse Source
This commit is contained in:
Laur IVAN
2026-02-25 22:47:51 +01:00
parent 59895c0211
commit a2f045b80c
3 changed files with 45 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
kubernetes/apps/security/infisical/app/helmrelease.yaml
View File

@@ -35,6 +35,10 @@ spec:
name: infisical-secret name: infisical-secret
valuesKey: authSecret valuesKey: authSecret
targetPath: backendEnvironmentVariables.JWT_AUTH_SECRET targetPath: backendEnvironmentVariables.JWT_AUTH_SECRET
- kind: Secret
name: infisical-db-pguser-infisical
valuesKey: uri
targetPath: backendEnvironmentVariables.DB_CONNECTION_URI
values: values:
fullnameOverride: *name fullnameOverride: *name
backend: backend:
@@ -46,9 +50,17 @@ spec:
SITE_URL: https://infisical.laurivan.com SITE_URL: https://infisical.laurivan.com
mongodb: mongodb:
enabled: true enabled: true
image:
registry: docker.io
repository: bitnami/mongodb
tag: "6.0"
auth: auth:
enabled: false enabled: false
redis: redis:
enabled: true enabled: true
image:
registry: docker.io
repository: bitnami/redis
tag: "7.0"
auth: auth:
enabled: false enabled: false

1
kubernetes/apps/security/infisical/app/kustomization.yaml
View File

@@ -7,3 +7,4 @@ resources:
- ./helmrepository.yaml - ./helmrepository.yaml
- ./httproute.yaml - ./httproute.yaml
- ./secret.sops.yaml - ./secret.sops.yaml
- ./postgres-cluster.yaml

32
kubernetes/apps/security/infisical/app/postgres-cluster.yaml Normal file
View File

@@ -0,0 +1,32 @@
apiVersion: postgres-operator.crunchydata.com/v1beta1
kind: PostgresCluster
metadata:
name: infisical-db
namespace: security
spec:
image: registry.developers.crunchydata.com/crunchydata/crunchy-postgres:centos8-15.0-0
postgresVersion: 15
instances:
- name: instance1
dataVolumeClaimSpec:
accessModes:
- "ReadWriteOnce"
resources:
requests:
storage: 5Gi
backups:
pgbackrest:
image: registry.developers.crunchydata.com/crunchydata/crunchy-pgbackrest:centos8-2.41-0
repos:
- name: repo1
volume:
volumeClaimSpec:
accessModes:
- "ReadWriteOnce"
resources:
requests:
storage: 5Gi
users:
- name: infisical
databases:
- infisical